Data Protection Concepts Flashcards

Mock Exam Revision

1
Q

Obfuscation

A

Obfuscation is the deliberate act of making code, data, or communication confusing or harder to understand to evade detection, analysis, or attribution while in plain sight. Common in malware (polymorphic code), phishing (URL manipulation), and adversarial tactics (command-and-control traffic masking). Countermeasures include deobfuscation tools, behavioural analysis, and threat intelligence.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Tokenisation

A

Tokenisation is a security process that replaces sensitive data (e.g., credit card numbers, SSNs) with algorithmically generated, non-reversible tokens. These tokens retain transactional utility without exposing the original data, reducing breach risks. Unlike encryption, tokenisation doesn’t rely on cryptographic keys, making it ideal for payment systems (PCI DSS), healthcare, and identity management.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Features of data masking include:

A
  1. Replaces sensitive data with fictitious or modified data while retaining its original format.
  2. Allows for data manipulation in environments where the actual values are not needed.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly